Generally SSH related log messages are logged in /var/log/messages file. Is there a way to log them in another different file? I mean is there some configuration setting to enable this?
View 7 Replies
I am facing a problem while trying to log SSH messages in a separate file, say, /var/log/ssh_logs. I have tried modifying the syslog-ng.conf file as follows:
filter f_ssh { facility(auth, authpriv) and match("sshd[[0-9]+]:"); };
destination d_ssh { file ("/var/logs/sshd_logs"); };
log {
[code]....
But still I am not able to get the ssh logs in the new file. They continue to go to /var/log/auth.
Using rsync, which switch will allow rsync to suppress the "skipping non-regular file" messages in the output while still being reasonably verbose for everything else?
View 1 Replies View RelatedI have a syslog-ng running and kernel build of 2.6.34.8 I use a syslog API in my program with facility LOG_LOCAL5 and and levels debug err and crit and info. when I ran on the older syslog facility I had everything logged fine as I intended. now I have written these rules into the syslog-ng.conf:
options {
flush_lines (0);
time_reopen (10);
log_fifo_size (1000);
[code]....
the last two rules show my program gnssapp. the result is all debug levels or crit or err levels I don't see any of them !
I'm using Red Hat Enterprise Linux Server release 5. In this whenever a user process crashes due to segmentaion faults , it was not logged in /var/log/messages. Even dmesg is also not showing any messages related to this.
Where as in another distributions(Cent OS 5) I've seen segfaults messages in /var/log/messages whenever my user process crashed.dmesg also showing the segfaults.
Is there any settings that to enabled so that it logs segfaults into /var/log/messages.
I cross checked /etc/syslog.conf of both the systems. Both are same and even /etc/sysconfig/syslog files.
I use python 2.6 logger to log to a file. But now I want it to be part of /var/log/messages.
Any tips/pointer/guide on what to do?
if I use the final flag, postfix loggs to /var/log/messages, not to /var/log/maillog.What I am doing wrong?regards ralfHere my config:
options {
sync (0);
time_reopen (10);
[code]....
I have a Asus RT-n12 router with DD-WRT v24-sp2 (12/19/10) mini(SVN revision 15943M NEWD-2 K2.6 Eko)I can not get my rsyslog on my linux pc to log messages from the router. I did a netstat -arn and got:
Code:
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
[code]...
After struggling and googling on the internet I can't manage it to work.I have stup rsyslog to receive the logging from my firewall and it puts it into the syslog file.ut I would like to have a separate logfile for these messages.I have created the firwall.log file with owner syslog, same as for the syslog file.I already have tried to use in the /etc/rsyslog.d/10-firewall.conf the following ::msg, contains, "firewalld" /var/log/firewall.logor
:msg, contains, "firewalld" -/var/log/firewall.logI don't know the difference between the "-" sign in the lines but I have seen also those kind of situations.
I also have put this line into the 50-default.conf file because I thought it wasn't seeing the 10-firewall.conf file but no work.I have added a $template HostMessages, "/var/log/%HOSTNAME%/logfile.log" in the /etc/rsyslog.conf file but neither it works.In the firewall I can see the Syslog facility is now on LOG_LOCAL0 and I can change it from LOCAL0, LOCAL1, LOCAL2, ... until LOCAL7What does these different numbers mean
I�m looking into preventing the samba messages from appearing in the system log (/var/log/messages).I added syslog = 0 to smb.conf and reloaded the config but messages are still appearing�suppress logging or reconfiguremba such that the �nmbd� and �winbindd� messages do not appear in /var/log/messages
View 4 Replies View RelatedI've got a Shorewall (Shoreline?) firewall up and running, but it's logging to /var/log/messages. I'd much rather have it logging to another location e.g. /var/log/firewall but can't find (a clear enough) explanation on how to do this. Apparently, it varies greatly depending on the distro, the kernel, and the version of Shorewall that is running. You'd think it would be something as simple as setting a path in a config file, but apparently not. I'm running a stock Lenny kernel on the firewall machine. It comes with version 4.0.15 of Shorewall.
View 9 Replies View RelatedHow can we do a simple match by regular expressions on two filenames. I plan to use it in the command 'find -regex'
Code:
hosts.txt
ipaddress.txt
I have some series of files, which actually named bellow
<day_month_yr>_<hh:mm:ss>.<host_name>.<IP.ip.ip.ip>.<log_name>.txt
I want to show this file name below the column may be
Date Time Host_Name IP_address Login_Name
----- ---- --------- ---------- ----------
<day_month_yr> <hh:mm:ss> host_name x.x.x.x log_name
...
Is it possible to do in Linux each mail be in single file. For example: i am having all the mail in /var/mail/root.
Quote:
From root@localhost.localdomain Thu Mar 10 21:47:47 2011
Return-Path: <root@localhost.localdomain>
Received: from localhost.localdomain (localhost.localdomain [127.0.0.1])
by localhost.localdomain (8.13.8/8.13.8) with ESMTP id p2AGHlx4004190
[code]....
is it possible to do every mail when i receive it not store in the /var/mail/root. and need to be store like /var/mail/root1(for firs mail) and for another mail would be store in diff file like /var/mail/root2(for second mail)
when you log in through the terminal as root, you get a question if you want to apply the proxyconfiguration or not.
I have done this by changing the .bash_profile of the root-user:
Code:
I have adapted rsyslog with the following:
Code:
But it doesn't work. The messages have to be written to the logfile by using the logger-command.
I have a file partially like this
209 c 89
215 a 76
603 B 190
626 f 240
I want to separate this file into two sub-files based on the lowercase and uppercase of column 2 so that the sub-files are like
file1
209 c 89
215 a 76
626 f 240
file2
603 B 190
I have an oracle database that is getting file i/o errors. I don't think it is the fault of oracle, but the nfs mounted filesystems. So ... to troubleshoot my next step is to see if Linux is having trouble with i/o. These are nfs mounted and there are many files located on the filesystem which is having the error. The error only occurs on one file.Does anyone know how to turn on logging for any errors received? I assume I need need logging for nfs daemon, but not sure. Please correct me if I'm wrong.
View 1 Replies View RelatedWrite a script that will take a list of filenames as arguments and output a count of how many of them are regular files, and how many of them are scripts (if the file is executable, it will be assumed to be a script file)
Counts always come back as 0
I wish to prevent the samba messages (mainly nmbd and winbindd) from appearing in the system log (/var/log/messages). I want to allow samba logging to the standard samba logfiles, but prevent the syslog getting clogged up by samba. I added syslog = 0 to smb.conf and reloaded the config but the messages were still appearing. I also tried the following (and restarted the syslog via /sbin/service syslog restart) # Suppress messages from samba.
nmbd.* /dev/null
smbd.* /dev/null
winbindd.* /dev/null
For interests sake the messages I'm getting are below (I'm not concerned about the messages themselves, I can chase them up at my leisure via the samba logs) Mar 18 09:58:29 SERVER nmbd[3808]: query_name_response: Multiple (2) responses received for a query on subnet xx.yy.z.zz for name DOMAIN<1d>. Mar 18 09:58:29 SERVER nmbd[3808]: This response was from IP xx.yy.z.zz, reporting an IP address of xx.yy.z.zz.
This must've been done before: I want to keep a log file open in terminal so I can monitor updates to it as they occur. My searches are coming up with everything but this situation... I must be missing some terminology or something key, because people do this all the time inside of other programs (NetBeans, or rails server, for example).
View 2 Replies View RelatedI am trying to parse a line from a file and place the values into separate variables:
input.txt:
Code:
CreateVegaFeed-20110928-before-skip-start
this is the code i have done so far:
Code:
$input_file="input.txt"
INPUT_FILE=`cat $input_file`
for i in $INPUT_FILE
[Code].....
I have a windows install with linux installed within the windows system using WUBI. I attempted to change the user folder and after logging off I received a err message regarding /home/XXX/.ICEauthority. I am using ubuntu 10.04 LTS.
View 4 Replies View RelatedHow can I disable ICMP messages through the configuration file of /proc/sys/net/ipv4/ICMP_echo_ignore_all Also how the above file can be edited?
View 1 Replies View RelatedI have a samba file server that has Windows XP machines connecting to it. Fairly regularly, I get messages such as the following. Are these anything to worry about? What do they mean? Nobody ever has problems with disconnecting or losing their mapped drive or their desktop shortcut not working.
Code:
Nov 15 15:37:21 servername smbd[27516]: [2010/11/15 15:37:21, 0] lib/util_sock.c:read_socket_data(384)
Nov 15 15:37:21 servername smbd[27516]: read_socket_data: recv failure for 4. Error = No route to host
[code]....
All my torrents go to my home/username/Download/ folder, I could read/write yesterday but now I cant even copy the files to a flash drive.The error i get is "Cannot create regular file '/home/username/Download/file' : Read only file system.
View 14 Replies View RelatedI made a bzip2 file by
bzip2 -c /home/os/picture1 > /home/os/Desktop/pic.image
bzip2 -c /home/os/picture2 >> /home/os/Desktop/pic.image
But now extracting pic.image by bzip2 -d /home/os/Desktop/pic.image returns
bzip2: Can't guess original name for pic.image -- using pic.image.out
And then it just creates one file pic.image.out.
How do I access picture1 and picture2 from pic.image?
is there a way to produce a .deb file out of a regular firefox precompiled downloadable binary, the ones we can download of their ftp? I don't want to start an iceweasel/firefox flame war.
View 9 Replies View RelatedI'm using my AntiX M8 Live CD to repair a hosed Windows installation, I downloaded ComboFix to ~/home/Desktop and now I'm trying to copy (cp) the file to /mnt/ where I have already mounted the NTFS Windows partition. NTFS3G is integrated into AntiX, right? So why am I having permissions errors?
Code:
mepis1:/home/demo# cp -v Desktop/ComboFix.exe /mnt/SwSetup/
`Desktop/ComboFix.exe' -> `/mnt/SwSetup/ComboFix.exe'
cp: cannot create regular file `/mnt/SwSetup/ComboFix.exe': Permission denied
mepis1:/home/demo# So far, I can read it without any errors in Terminal and navigate through the whole filesystem in ROX-Filer, Do I need to edit /etc/fstab to be able to write to an ntfs drive?
I'm trying to math all class references in a C++ file using grep with regular expression. I'm trying to know if a specific include is usuless or not, so I have to know if there is a refence in cpp. I wrote this RE that searches for a reference from class ABCZ, but unfortunately it isn't working as I espected:
grep -E '^[^(/*)(//)].*[^a-zA-Z]ABCZ[]*[*(<:;,{& ]'
^[^(/*)(//)] don't math comments in the begging of the line ( // or /* )
.* followed by any character
[code]....
Well, I can get patterns like this:
class Test: public ABCZ{
class Test: public ABCZ {
class Test : public ABCZ<T>
[code]....
i installed Slackware 13.1 64 bits in a asus laptop and until now everything is running ok. But when i tried to mount a usb pendrive, i just can mount it as root;well, i thought there would be no problem, i will change permissions with chmod and everyone could access, read and write on it the command :
mount -t ntfs /dev/sdb1 /mnt/kingston
and making ls -l the result is :
drwx------ 1 root root 12288 Dec 8 17:20 kingston
so next i wrote (as root):
chmod 777 -R kingston
and the message was "Operation not supported" i tried also changing the ownership permission :
chown molei:users /kingston
drwxrwxrwx 1 molei users 12288 Dec 8 17:20 kingston
so, apparently i would have total access to the kingston directory; the problem is when i try to copy something to the kingston dir, an error msg. appears :
cp: cannot create regular file `/mnt/kingston/linux_guide.pdf': Permission denied
